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2 (57) Abstract: A method and system fur conneciing mobile users lo ihe Intetnet using cooperative inlerconneclion. A node consists 
of a network element that has two connection methodologies-typically a node will have a radio link and a wired link to the Internet 
Q To obtain a connection a member of the service locates themselves in proximity to a network node which is commonly provided by 




another member and the cooperative tunneling agent requests a secure link. All members of the service agree to give connection to 
the Internet upon request from another member. 
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TITLE OF INVENTION 

Title: Cooperative network for mobile Intmet access. 

CROSS-REFERENCE TO REIATED APPUCATEONS 

This patCTt does not daim the benefit of prior applications. 

STATEMENT REGARDING FEDERALLY SPONSORED RESEARCH OR 

DEVELOPMENT 

'Not Applicable* 

REFERENCE TO A MICROFICHE APPENDIX 

'Not Applicable' 

TECHNICAL FIELD 

The present invention relates to a compute m^od and system for connecting to a 
fixed network and, more particularly, to a method for connecting mobile users to the 
Internet. 

BACKGROUND OF THE INVENTION 

The Internet came into being in its current form in 1983 when all the compute 
connected to ARPANET - a military network - b^an using the same communication 
protocol. In 1986 ARPANET became NSFNET in a bid to link the USA's 
supercomputers. E-mail began to be comm^ally available in 1990 at much the same 
time that Mosaic -thie first woildv^dde web bniwsar- became a useful product Tte . 
Internet, comprising mainly the WWW (world wide web) and e-mail is now an 
extremdy important business tool. 

The world is now networked, much of this provided by TCP/IP (Transmission Control 
Protocol/Intemet Protocol) but ATM (Asynchronous Transfer Mode) is still dominant 
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in telecommunications. Most major companies have aceess to tbe fitf&ft^^uid flte 
Internet backbone nms thm much of our environm»t This infiastnicture is made up 
from laigely fixed, rigid connections; wires^ rqutors, switches and similar. 

Human beings tend to move around vAn^n engaged in work and Idaire. An easy way 
to connect to the fixed network is needed for these mobile users. Mobile usen are 
commonly envisaged as people uang a cell phone or other radio device;, but for our 
purposes a 'mobile user* is anyone away fix>m thdr fixed home basa 

It remains difiBcuIt for a mobile user to obtun a high bandwidth connection to the 
Litemet for two reasons: 

1. \^^reless connections are inh^ratly expensive as they use a rare resource- 
radio frequency spectrum - and require large infiastiucture investments. 

2. There are practical difficulties when away fi'om home base, sudi as 
detmnining IP addresses, proxy server settings^ negotiatmg billing and 
payment and security and privacy concerns. 

Even the simple task of moving fix>m one office to another witlun the same company 
can be fiaught with conqilications and more often than not people fiul to make 
connection when traveling away fi-om home base. With so many conqianies relying 
on e-mail and the Worid Wide Vfeb as a critical business tool, an inaUlity to connect 
can prove costly to companies. In the last three years the abi lity to access the Internet 
has begun to migrate to mobile devices. Small mobile devices have tended to use a 
variety of specialist Internet access methodologies with varying degrees of 
commercial success. They all suffer Scom the limitation of low bandwidth and high 
cost. 

There are a number of methods by which users can get access to data fiom mobile 
wireless devices: SMS, HDMI^ WAP and I-Mode being the main standards. Ail of 
these standards suffer to some extent from problras such as limited bandwidth and 
complex authoring environments. 



wo 02/057869 



3 



PCr/DS01/4d666 



In SMS (^OTt message savice) users can send and recdve sbnpto lixnn tod 
messages from their phone. A saver at the mobile phone service either routes them to 
other mobile phone users or (m>vides a gateway that translates the messages and sends 
them as e-mail to Intern^ e-mail services. TTie gateway will also translate incoming e- 
mail and send it to the user *m SMS format Although rudimentary, large ^iccessfiil 
businesses have been founded from sending these short messages demonstrating that 
people need data on the move and are prq)ared to pay for it 

In HDML (Handheld Device Markup Language) a wd) site is composed using 
spedally modified tags. A wireless gateway translates these ti^ so that the mobile 
device may view them. A mobile device equipped with a micro browser oqiable of 
interpreting HDML can display this information on a small LCD. 

In WAP (wireless application protocol) a web site is composed using WML (wireless 
markup language) and this information sent to a WAP gateway. The uso: gains access 
to this gateway either by dialing a RAS (remote access serv^) or by using a packet 
based system, conunonly referred to as 'always on'. 

In I-Mode specialist tags are again used to create pages formatted in conq>act-HTML. 
These are served over a gateway to users on a padcet-based systent 

In the above systems a specialist gateway is used to provide output formatted for 
mobile devices. An alternative method of accessing the Intern^ from a mobile device 
is provided by fixed wirdess systems such as Bluetooth and the IEEE 802.11 wirdess 
LAN standard. 

In the 802.1 1 and Bluetooth standard two wireless devices establish a point to point or 
point to multi-point link using spread spectrum radio technology. The two wireless 
devices can be any type of electronic appliance - PC, PDA, Cell phone, niioowave 
oven, home security system. This link replaces wires and does notlung to reformat the 
content of data. 
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Another wireless standard that has readied ubiquity in wm^abilify bat hasi veiy Ittfb 
usage is IrD A (Infrared Data Association). In the IrDA standard two devices with 
IiD A capability positioned near one other can communicate using infra-red beams. 
The standard ^liSers from two problems. Firstly that the Hnk is optical and therefore 
requires a clear line of sight The devices must be positioned so that their poxts are 
visible to each other or at least so that sufiBcient reflected light reaches the ports. 
Secondly the two computers need to have their IrDA ports configured and switched 
on. TUs is a non-trivial task: The hardware must be enabled - commonly power- 
saving and conq[>atibility issues mean that computers are shipped vnth the port 
disabled. A device driver must be installed. Once the physical link is available a 
logical, link is needed to allow file transfer or access to the hard disk of the C(nq>anion 
computer. Security and privacy must be ensured. 

Looking at problons of getting Intmiet access when mobile a number of steps are 
required. 

1 . Some fi>nn of driver software is needed to configure the user's hardware to 
allow a link to be made. 

2. The physical link needs to be made. This may be by pointing the two 
computers at each other or connecting a badc-to-back USB cable, which has 
been provided by, for example, the hotel at which the user is staying. 

3. The host user needs to enable arul share certain services, such as printers and 
hard disks and network connections. 

4. The host user iieeds^ itself to log onto the Memet 

5. The host us&t needs to act as a gateway for the connecting user, translating and 
forwarding packets onto the Internet. 

6. Hie IP address ofthe host's interfiice needs to be configured to anon 
conflicting address with that of its Internet link. 

7. The IP address of the connecting user needs to point to the host user. 
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8. ThepoitsaxKipioxy so^/mneedtobesetup.&nen if otf speelri^ 
required a uses^ who normaily woilcs in a corporate nrtwork with special 
settings will need to write these down and tfien delete thm fix)ni the system, 
imembering to type them back in whm retumiog to the corporate 
environment 

9. Iftte link has a cost to it a finandal transaction needs to be entered imow^ 
metering and billing. 

10. No simple solution is available to ensure a secure link. 

11. &-mail may or may not require yet more steps to enable. 

This multi-step process is fraught with difficulties and there are numerous potoitial 
points of fiulure. Most connections fail because either one of the steps cannot be 
completed, or each step is so time consuming that the user gives up before completing 
the task. Since mobile users are usually short of time, have limited resources (such as 
drivM- disks, spare cables) and have to configure multiple times as they travel thru 
different environments, the effort is very fiustrating. Typically the above exercise is 
completed around 30% of the time with a mean time of effort of two and a half hours. 
Although many opiating systems (such as Windows 2000™) allow connection 
sharing the implementation of these otiakes the task very complex. 

An additional fimher complexity has been generated by the lack of interoperability 
between l^E 802. 1 1 and Bhietooth. Since both standards c^mte m the same 
frequency spectrum the two systems will tend to interference with eadi other. 

Additional difficulties occur when a firewall is present. If a shared connection is 
obtained in the home or office^ access to the Intern^ may be blodced or restricted by 
the activities of a firewall. The same technology that provides the firewall cqmbility 
may also track usage and web sites ^sited providing a risk to privacy. Additionally 
information that is sent or received may be logged causing considerable security risk. 

Although the cellular system provides some degree of roaming it provides no solution 
to inter-system roaming and uses e3q>ensive infrastructure, which results in hi^ call 
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cost In addition the process of connecting a PC or PDA (KLa edt^pteas i84omp]bc 
and requires considerable reconfiguration of the device. 

The current mode of access to die Intenirt is predominantly through a one-to-one 
commercial negotiation. Each person has a connection to the Intmet via their own 
ISP. When visiting someone else's home obtaining access to the Internet is difficult 
Calling the ISP recpiires anoth^ phone line. In the case of ADSL or cable systems the 
MAC address of the network adaptor is registered to the ISP so that a second us^ 
canH use the connecdon. You can install a networic and enable connection sharing in 
your OS - fin- example Windows 200ff™ - but this involves a number of conqplex 
stq>s. In addition time is a mgnificant security implications to tins. Generally home 
and commercial networks are not set up with the antidpation that roaming usm will 
be physically connected to the network inside the Fhewall. Thus many network 
services are not secured against internal access. (It is not uncommon for a corporate 
network ruiming Windows ™ 2000 to have numerous hard disks shared widiout 
passwords.) Although the firewall blocks this firom external access, a local connection 
would be inside the firewall. 

Althou^ these problems have existed for some time, the emergence of Bluetooth and . 
TRKR g02.11 are »courag^ people to coimect more often. 

While the above discussion is centered on the difficuhy of human beings obtaining 
connection to the Intmiet it should be boum in mind that autonomous machines have 
similar difficulties. Much talk is made of microwave ovens^ video recorders and 
refiig^ators talking togetl»* usiiig home netwcMks. It is also en>dsaged that 
automobiles will be similarly equipped. These systems are likely to become 
ubiquitous over the next five years as networldng capabilities are built into 
appliances. These devices need to obtain s«r\aces fi'om somewfam and need to obtain 
a coimection to the Mmiet It will be protubitively expulsive to 9ve each device it's 
own de^ca^ connection. The devices will also need services tailored to them. One 
can consider that an appliance once manufiictured an shipped becomes a roaming 
device in need of connecdon to the Intmet. 
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SUMMARY OF THE INVEIWlDBr 

An embodiment of tfie present invention provides a method and system for connecting 
to a network - typically the Intern^ via a cooperative membership arrangement 
Members of tiie cooperative networking s^ce have an identifier that uniquely 
identifies them as a member of the service. A fixed member (host) enables its link 
cq)abilities for mobile users (clients) but directs those links to communicate ^intfa a 
secure piece of software - the Coopmitive Tunneling Agent (CTA). Upon access by a 
mobile member, the CTA sends both identifies and status information to a server. 
The server contains preference information on all members tiiat can be referenced by 
their identifiers. The status information is compared to the presences of the two 
members and, if the comparison is successful, a link to the Internet is prodded to the 
mobile member. If the comparison &ils the members may be notified and allowed to 
modify the preferences, make a one-off exception or rqect the link. The CTA can 
work with or without reference to a server. When woridng independently of the server 
the comparison is made using data from the host and the client and the server is only 
accessed if additional information or service is required. 

The CTA ensures that the mobile user has no access to the fixed user's computer 
other than as a pipe thru to the Internet To ensure that the mobile user's security and 
privacy are protected the data packets may be ^crypted and sent via the fixed host to 
the server. The server may decrypts the data and sends it to the Internet Return data is 
similarly dealt ^mth. By this m^od the fixed member cannot eavesdrop on the 
mobile member's data or voice trafiBc. Such enoTption can be set at a variety of 
strengths according to user preference and applied selectively depending on the data 
type. Routing of the data may also be performed selectively according to data type. 

BENEFITS OF THE INVENTION (O&A) 

An advantage of the system is tiiat two members can quickly and simply set up secure 
link so that one memb^ can access the Intmet thru the other members network 
coimection without causing security risks to dther member. 
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A fiirth^ advantage of the system is that one memb^ oanmso^tte lawrcost access 
method available to another user. 



A fitrtfaer advantage is that voice calls can be sent to tiie host and routed ov^ the IP 
n^oric using VOIP technology thus dramatically reducipg costs. 

A further advantage is that voice cal Is can be routed thru the celhtlar system to a local 
VOIP server thus saving long distance cellular chaiges. 

A fiuAer advantage is that by simpliiying the operation of logging onto the network 
thru fixed nodes commerdal node providers will find it easier to acquire customers 
and the service to those customers will be improved and simplified. 

A fiirther advantage is that by providing a universal logical standard for connection 
inconq>atible transport protocols can be made compatible. In the exanqyle of 
Bluetooth and TREE 802. 1 1 the CTA can ensure that the protocols synchronize to 
di>dde their spectrum usage in either time domain or frequency domain for all 
membors present 

A fiirther advantage of die system is that ance access is automated according to pre- 
set prtf^ences the system can be used for the connection of autonomous appliances 
and machines vibo are not able to make complex dedsions regarding optimal netwoik 
access. 

The link can transport dth^ data or voice. In the case of voice the CTA handles the 
VOIP (voice over IP) protocol. VOIP and Multimedia can be dther sent via the 
complete path thru our secure server or split apart to take a more optimum routing. 

The software allows die user to access the Internet, send and receive e-mail and obtain 
high bandwidth s»vioes such as MP3 files and movies. The network is cooperative as 
each user agrees to both give and receive access depending on their status. Each us^ 
is a node. A cell phone located within 100 feet of a fixed host device can connect to 
the Internet through that device, obtaining phone calls at a fraction of the cost of a 
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regular cellular connection. Smitarly a poitable con^mtor er ¥BA wocdfd be ^fe t6 
connect througb a host node and obtain a high bandwidth link to the Intemet for a 
modest sum of money. It is anticipated that there will be two mam types of 
connection; cooperative connection and commercial connection In a cooperative 
connection* a fixed user connected to the Internet provides a bridge so that other 
mobile users may access the Internet through their link, lliis fink is provided free of 
diaige in r^um for reciprocal roaming rights, bi a commerdal connection the user 
locates a conamerdal node and the CTA negotiates connection and p^ment tmns 
according to preset user prdferences. 

While this mvention is primarily taigeted at sinq)ltfying the tadc of oon^ 
fixed wireless devices such as Bluetooth or 802. 11 it will apply to any comiection 
mediodok>gy - LD A port, network cable, serial cable, USB crossover connector et 
oL Our inv^on is intended to fiunlitate connection to any ri^dnetwoik 
infrastructure but the Int^et is the most important of thesa 

Nfeans for cleanly handing off connection fix>m one system to another are provided by 
the CTA. By storing both the customer's Cellular provider information and the 
Cooperative networic ID the call can be routed through dther system. In addition if a 
voice call is in progress and a Bluetooth cooperative connection becomes available 
the call can be set up in the VOIP system and handed over and visa versa. 

The technology provides the fiinction of a bandwidth moderator. As a user moves 
about tiheir daily life firom home to ofBce via different modes of tnuiq>ort» thw 
requirements for btem^ connection diange in characteristic, and the mode of 
connection dianges. Our technology ^ between the user and the Intern^ constanUy 
negotiating the most cost ^fective means by which they can gain access. While today 
the modes seem simple - it's a wired or a wdess link - this will not remain so in the 
future and all software systems will require an agent to perform this task, ft is an 
objective of the present invention to optimize the *last mile*. 

This system differs substantially from the cellular system in that a substantial amount 
of network hardware is provided by the members of the network and not by Wgh 
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capital value dedicated infiastructure. It is generally a sfflrpnsa to peorj^e^^eb Hs&f 
realize how often they are within 100 feet of an Int^et connection. Additionally thei 
cellular system provides no handoff m^odology betwem dififering dasses of carrier. 

BRIEF DESCRIPTION OF THE DRAWINGS 

I^g. 1 illustrates txnmeiing Internet access in one embodiment of the present invention. 

Fig. 2 is a flowchart of the process by which a link is established. 

Fig. 3 is a table showing the data record structure for a customs. 

Fig. 4 is a flowchart of the process by which coopmtive networking is enabled. 

Fig. 5 is a diagram illustrating recursive service discovery. 

Fig. 6 is a block diagram of the elements of the system. 

Fig. 7 is a table describing a day in the life of a user. 

Fig. 8 is a flowchart of the matching algorithm. 

Fig. 9 is a diagram illustrating voice over IP and service handoff. 

DETAILED DESCRIFTION OF THE INVENTION 

The present invention provides a method and system for easy, secure, mobile Internet 
access thru fixed connections points. These fixed connection points being computers 
that are connected to the Internet and have another port available for connection by 
one or more mobile users. A fixed connection point can itself be a portable device, 
such as a portable PC, and may be moved fix)m time to time. The term is a relative 
one. To a mobile user a PC with an Internet connection is a fixed device. For the 
purpose of discussions regarding the system operaticm these fixed points will be 
described, as hosts and a mobile user will be called a client The host can be any form 
of general purpose PC or a custom built de^ce; vMch as two connection 
m^odologies and an ability to selectively connect those methodolo^es under 
program control. 

The simplest system has a host and a client. The host will generally conununicate 
with a server to transfer data and receive services but a host can run in stand-alone 
mode if connection to a server is unavailable or if client security and privacy are not 
high concerns such as when the host and client are used by the same person. 
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Tlie system is composed of three main parts: The software application, the web server 
and associated web site and spedalist n^work services such as streammg and VOIP 
which are provided by other parties. 

The Hnk fiinctions include: 

1. Download of software. 

2. Installation of software. 

3. Updating of software. 

4. Registration ofthe user to the sendee. 

5. Testily the system. 

6. Location of another wireless node or enabled device. 

7. Backup location of any Node. IrDA, wired, dialer. . . 

8. Determination of payment conditions: cooperative free, cooperative with cost, 
commerciaL 

9. Detmnining whether the user permission matches the link available. 

10. If it does, establishing the link. 

11. If it does not, notifying the user ofthe availability and givii^ them thf option to 
accept or rgect plus update their user profile. 

12. Provide voice over IP. 

13. Call handover to cdlular network. 

14. Data handover to cellular netwoik 

15. Enciypt / Encode data for safe sending to the remote wd> serv^. 

16. Location of VOIP n^wcnrk nodes (Akamai™, Lipstream™ et dl.) and direct 
conmiunication with streaming servers. 

17. Billing, most recent call information. 

18. Fauh logging and diagnostics. 

The tunneling fiinctions include: 

1 . Identify fibced line connection or anotha* wireless node. 

2. Connect to cooperative s«rver and register. 

3. Activate and monitor cooperMive connection and enumerate service. 

4. Negotiate link with request from cooperative member. 
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5. Provide secure link (tunnel) to Internet. 

6. HaiKlover to alternate link upon request or diange in netwoik status. 

The SCTver functions include: 

1. Registration of users. 

2. User preference setup. 

3. Service list /Portal to customs s^ces. 

4. Decoding /De-encrypting transmission and forwarding to web. 

5. Provide an Internet store and forward. 

6. N^otiadon of streanung links. 

7. Negotiation of VOIP link. 

8. Allow r^stiBtion to partner services. 

9. Negotiate handover upon network status cbange. 

Third party functions that mav be linked to include: 

1. Provide VOIP service (Lipstream™, Net2phone™, Akamai™) 

2. Provide Streaming service (RealNetworks™, Akamai™, Microsoft™, 
QuickTime™) 

The software application runs on both the client and the host, varying its mode of 
operation depending on its fimction in the network. (R is possible jfor the software to 
run mthin a browser thus giving a 'software-less* mode of operation Is will be 
obvious however that software is indeed running in this instance.) 

The web server provides the user interfece to the serwce^ allowing people to register 
and also the configuration software to correcdy set up each nuichine and ensure that 
the software application which runs on the client's and host's is up-to-date and 
correctly configured. 

In the case of multi-media and voice these IP pack^s may not be routed to the server 
but may travel via a third party routing service for optimum performance. 
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The preferred embodiment of the Invention win now bt dSdTiited wnfrfinr^d 
figures. The embodiment assumes that a short-range wirdess link such as Bhietooth™ 
will be available, and the reader is directed to the Bhietooth specification for fiirtbo* 
implementation detail. In addition a us^ skilled in tfie art should be able to translate 
the flowcharts into useable code by refoence to examples provided in tfie litmture, 
for example the Nficrosoft Developer Network™ for the \^dows™ operating 
systems. 

Figure 1 illustrates the general layout of the network A roaming device, 106, which 
might be a mobile computer, PDA, cellular telq>hone or home appliance, comes 
within range of the fixed wireless link of a noemba-, circles 107-1 10. The mobile 
device determines the connection m^hodologies available to it and their relative 
merits and then coimects to the host using the best available standards. 

Once the link has been established the cooperative tunneling agent examines the 
preferences of the roaming memb^ and the fixed member and compares these with a 
database stored on the server. If the comparison generates a match then standard IP 
padcets are mcrypted and sent from the roaming device 106, thru the fixed device 104 
or 1 OS thru any present firewall 1 03 thru the Internet 1 02 to our server vi a a link to die 
Internet 111. Our server 101 decrypts the padcets and sends ibsm onto the Internet via 
the link. Return packets fix>m the Intmiet are passed back to the server and are 
similarly routed back to the memb^ ^da the encrypted links. 

There are two scwarios; corporate and home users. A home user depicted as PC 
labeled 104 typically makes a direct connection to the Internet 102 without the benefit 
of a firewall 1 03 . A corporate user connects to the Internet thru a proxy server and 
firewall 103. These two functions are shown as a single block but may be comprised 
of several physical units; a router, a server, a proxy server, a firewall and a security 
monitoring computer. For our purposes it is not important how many physical or 
logical blocks are involved merely that there is a Firewall fimction that we need to 
negotiate. Firewalls provide a range of services. Primarily they block all ports excqrt 
the connmonly used business ports sudi as http port 80. This stops hackers accessing 
systems using older methodologies that often grant considerable powers to a user. In 
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addition the firewall may block specific web sites tfaiu lfiewd!fsiM'*ef ^atefiilP 
address lists * 'black list'. 

These preferences may be appropriate for the corpcHBtion but wholly inappropriate for 
the member requesting the tunnel. Tho^fore the tunneling agrat can oicode all 
packets and sends them thru port 80 bypassing any corporate spedfic snooping of the 
data. If the UDP ("user datagram protocor) port is available this may be 
preferentially used for sending VOIP and other real time packets. 

References to the server in this description may apply to any server providing our 
service. Th^emaybemorethanoneservcr on the network. Accesses may be cached 
at any point in the network. Thore may be several synchronized servers located 
geographically to improve throughput and efiBctency of the system. The actions of the 
serv^ may be split across several logical or phyrical devices so as to qptimize 
performance. In addition some specialized tasks may be ofQoaded to third party 
serves. The s^errriay be the computer of another member suditimtthore are rio 
specialist servers in the system and all tasks are distributed. In such a case the 
membm database might be duplicated and distributed thru the network to provide 
security and redundancy and avoid a single point of fiulure. 

Figure 2 is a flowchart giving the steps required to establish a link and obtain access 
to the Internet The turmeling agent ruiming on the climt compute sits in a loop 
attempting to find a network node 201. The polling rate can be set by user preference 
or turned off and re started by user command at a later stage. In the case of a 
Bhietooth™ radio link the link protocol will find a network node and establish the 
physical link m stq> 202. At this point a physical link exists betweoi the two devices 
but no services are yet available. The host computer has been pre-oonfigured to (Greet 
all physical links to the CTA (cooperative tunneling agent) which acts as a gate 
keeper for all network access thus the logical link 203 is set up to point only to tiie 
CTA. The client then sends the client ID and assodated information to H^e CTA. If 
this is the first access by a user to the host system the local match step 205 \^1 always 
fail However the match can fiul for two reasons. Firstiy that the preferences don't 
matdi immediate failure can be notified to the client without reference to the serv^. If 
the preferences match but insufiicient information is held to determine ^etiier a 
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complete link can be n&ade the host wiO contact the ser^^. (InCettaurcircaittsta/Kies 
such as die request tot a non-client^secuie link the dtent and host can operm&i 
independently of a serv^.) The d&esA and host information is srat to the server in stq) 
206 and the server attempts to make a match in 207. If the match fiib a link is not 
made and the user is notified and ^v» options to modify th^ preferences and start 
again. If the match is successful the Inik is made and link tnformati(m is cached on the 
host machine. This information can be used to reestablish the link without n^ience to 
the servo- if the link is broken. A mobile user who is on the edge of range may be 
constantly moving in an out of range so caching the link information allows the link 
to be made and broken quiddy without a s^er request bang required every time. 

Figure 3 is an except of a member record showing the important el^ents in creating 
a match between cooperative members. A person skilled in the art ^ appreciate that 
there will be other fields required to fully describe the customer and log historical 
information but these are generic to all ISP (Intemet S^vice Provide) customer 
records. Remembering that every user can be a host or client, the record is appropriate 
for all members. The record is divided into three main sections: genial data 301, 
tunnel provision 302 and tunnel request 303. In simple terms the member agrees to 
grant access to the Internet on cmain terais to odier mmbers. Members define the 
parameters on which they will accept access. If two parties come into range and the 
granting and accepting criterion match, a link is enabled. The most common link is a 
fixed member (host) connected to the Internet by an a]wa}rs-on connection, such as an 
ADSL modem, granting firee access to a mobile member. Another common 
connection occurs where the host is connected by metered access. The host can 
mfi>rm the cli^ of the cost prior to making a connection to die network. The process 
by whidi this information is used to establish a link is detailed in figure 8. 

Figure 4 is the flow diagram by which cooperative networking capability is enabled. 
In step 401 the user logs onto the website to requests the service. In step 402 software 
is downloaded to the member device. In step 403 the software scans the members 
system and determines the connection methodologies available, s^ parametm and 
directs the flow of data from those methods to a secure piece of software. In step 404 
the user sets the tunneling preferences that they wish to grant to other memb^ along 
with their personal details. In step 405 the user sets the access provision preferences 
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tfiey would like when they use the Mtwork. In stq> 406 fli^^stem ^suaBBanseS flb 
preferences and confirms they meet die customer poGcies p^laining at the time. 
These piefowces are stored on the hosl/clant with the associated user ID. 
Confirmation of credit approval can be ^ven at this point 

One skilled in the art would appreciate that the software could be provided by other 
means such as a floppy disk or CD-ROM. 

Rath^ than downloading and running the software on the client Systran, the soft^^mre 
could fim on the server and client system using a method such as Active Java™ 
Pages. However in order to configure die client system the software will need to 
undertake a number of low level ta^ which might be protected fiom mocfificadon by 
a Java program and downloadable program elements are generally required. 

Some operating systems, when connected to a new network^ automatically log onto a 
de&ult network spedftc web page upon boot-up. This feature can t>e readily prodded 
so that a client system has only to connect their computer and turn it on and the host 
node will automate steps 401 and 402. 

In the absence of a network connection the host compute may store a copy of die 
installation and registration software so that the registradon and setting of preferences 
can be performed off-line and then uploaded to the server upon next connection. 

The configuration software may be ^beamed' from one user to another or transfored 
ova- the link to user who does not yet have the service by a push or pull methodology. 

Figure 5 illustrates recurave service discovery. In this specification we have genmlly 
discussed systems where there is one fixed node connected to the Litemei providing 
one or more Internet connections to mobile nodes. However it may ofi»n happra that 
a mobile node is not within range of a fixed node but is within range of another 
mobile node that is itself within range of a fixed node: a two bop connection. In this 
figure we show a three-hop connection. A. mobile user 505 wants to gain tecess to the 
Internet. Thru the wireless network it connects to another mobile user 504 and 
requests a tunnel to the Internet. This unit is not connected to the Internet thru a wired 
connection and so itself makes a request to another unit 503. Hiis unit, ahhoug^h fixed, 
has no hardwired Internet connection and so connects another Computer 502, which 
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does tove a connection to the Internet SOI, and a link nuule. In ibis example tfie 
link is established on a request basis as it is undesirable to establish a permanent link 
for power conservation: a pull system. However the link b^een 502 and 503 can be 
established once and be substantially permanent as both units have mains power 
supplies: a push sy^em Thus the network can spread out to all pmnanently powered 
computers that are within range of each oth^ and can be fiirther increased in size on 
an ad hoc basis by requests finom mobile units. The scope of the n^work may be 
pushed outwards to encompass ail available nodes or pulled outward by devices 
wanting connection to the iSxed network 

In Older to save power it may be necessary for systems to synchronize their waking by 
registering a time pulse from the server and waking at predetermined times. (Packet 
dekqr time must be measured and added to the time synchronization pulse to ensure 
accurate synchronization of the severs.) Thus all the.components in a system may 
wake at a predetermined time to attempt to push the network outwards. 

Figure 6 illustrates in block diagram form the elements of a system. The client 
Browser 602 is pointed at the cooperative network website. It downloads and runs a 
program that sets up the computer. (This setHip was desmbed in detail in association 
with figure 4.) The s^-up means ensures that the correct drives are installed on the 
computer to physically utilize the ports of the computer and that the IP stack and 
network resources are available and can be intercepted. Depoiding on the exact O/S, 
the CTA coopmtive tunneling agent will either redirect all network caOs thru its 
routines or provide a simple means for switdiing itself in when needed. The best 
method is usually desoibed with examples in the documentation of the operating 
system. The software for the client is the same as that of a host system but the CTA 
on a host system only needs to talk to the uplink as there is no fiutho* downlink to 
manage. That said the downlink must be left in a state awaiting connection so that a 
multi-hop request can be made. 

The host computer runs two IP stacks and two sets of network drivers. The first set 
606 and 609 are used to conununicate the client. The second set 608 and 610 are 
used to talk to the Internet. The CTA 607 provides a low level link between the two. 
The host browser and applications are generally unaware of the presence of the link 
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uniess the host desires to know, in which case it can eitR^wn a urai^.^pcmt uTHfire 
defined web page or enable a status notification. The host application utilize the IP 
stack and drivm 608 and 6 1 0 in the normal way. The Bcxvesr conqmses a server 
engi ne 6 1 7 that perfiarms al I the tasks of linking with the Internet and deciypting and 
re-Fouting pack^. A store containing the latest configuration software 615. The 
matching rule file 616. The member database 614 and the web pages which tog^^ 
form the web ate 613. A packet from the client takes the fi>llowihg path. In the case 
where the client makes a web page request the browser nnites tfie call to the IP stadc 
in the client computer. The CTA intercq)ts the request, enoypts it and encq)sulates 
the packet in a new packet, i;^h is routed to the host Thehostpdcsup fiie padcet 
and routes it thru the CTA to fiie outgoing stadc, adjusting the IP address 
appropriately. The server receives the packet, de-encq>sul8tes it, deoypts it and sends 
it onto the web. When a rq>ly packet arrives, it is enciypted, encapsulated and sent to 
the client Further details on implementation oif tunnding ptJtoools can be found in 
the literature. 

Figure 7 is a table describing one potential typical day for a mobile Internet usee and 
illustrates the complex options available for connection and the many hand oflfs 
between systems. Starting in the home 701 the user has a cable modem giving access 
to the Internet at 500K bytes per second. Walking to the train 702 potratial access 
speed drops to 9.6 Kbps using their mobile phone. On the 6st moving transport mode 
of a train 703 the potaitial cormection speed is limited, even in the new 3G networks 
that are being proposed. Once at work a free cormection is available to the Internet 
using the ofiice LAN 704. When the user goes to a meeting they discormectfix>mthdr 
LAN and move either to a dififerent LAN node or a mobile n^ork provided by file 
IEEE 802. 1 1 standard 705 . As they go out to hmch in a locd coffee bar Starbucks'™ 
they have access to a public Bhietooth node 706. Bade in the office 707 LAN access 
is again available. Cell phone is available as they walk to thdr car 708 and drive in 
their car 709. At agas station where they stop, a Bluetooth link is again available for. 
high speed access 710, At a friend's house an ADSL link is available 71 1, but 
connecting to that LAN could be by a variety of means, induding Bluetooth link or 
network cable. After leaving their friends house our user goes via Taxi 712 to a Hotel 
where a high speed Internet link kit is available in the closet of tiieir room 713. It is an 
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ODjecc ot our invemioii to malce such mobile use siinplcsr txy prdvisibn ot means to 
mediate the handofGs between these systems, store user and network data cratrally 
and to provide common access links to all these differrat networks. 

Figure 8 is a flowchart illustrating the matching process. Hie matdiing process 
obtains the host 801 and client ID 802 and looks up the record on the database 803. It 
then attempts to match the access permission with the desfaed access 804/805. If this 
fails the client is asked whether it wants to change preferences 806. CTypically the 
failure will occur because the client has no settings for obtaining a paid link to the 
Internet if the host is a commerdal link or a coopeiative link with non-zero 
mcremental cost for access. The host will want to pass this cost onto the client) This 
will require the client to amend their record 807 to provide billing info and to set the 
maximum connection charge and per nunute charge that they are prq>ared to pay for 
an Internet connection. In the case of a paid link tfiey can fiirther set a budget for link 
costs. 

Fig 9 illustrates handofiF between a fixed wireless, Internet based, VOIP system and 
the cellular system. A mobile user 907 is witlun range of two methods for placing a 
call; a PC running our cooperative networking service and a cellular tower. The call 
might be preferentially placed to either unit based on the users pre-set preferences or 
based on the current situation. Both links could be made or broken independently and 
exist simultaneously. In the case of connection made over the Internet voice padeets 
are sent over the air using a wireless link such as Bluetooth or IEEE802. 1 1 to the host 
905These packets are routed thru the Internet 901 to a VOIP server 903. The VOIP 
server converts IP packets to a form suitable for use over the PSTN and handles 
making and breaking the connection to users. Th^-e are many VOIP servers, two are 
shown here, located in each region such that the call is placed at a local rate. If the 
user moves away from the fixed wireless link 905 or the Int^et becomes congested 
such that call is no longer of sufficient quality, a fector that can be determined either 
automatically or by the user the call can be dialed on the cellular link. There are a 
number of methods that handoff could take. Firstly the call could be dropped by the 
VOIP serv^ and a new call initiated end-to-end thru the cellular i^twork to the 
destination 908. This would result in a break in the calL More suhably the mobile 
device would call a VOIP, either the existing server 903 or a s^^ located near to 
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the callo- 910. The VOIP server would take informaticm fromWe cooperative nefwoix 
server and route the call to the already established PSTN link and then to tiie 
desttaation 908 thus maintaining the call. A benefit of tfiis is diat tiie call is not 
dropped, int^nipted or rdnitialized. A fiirth^ braefit is that mobile device can place 
a call to a local VOIP sen/& 9 1 0 which forwards the information to a VOP server 
local to the receiving party thus saving cost The call routing betwem the two VOIP 
servers can be Wa the public Internet (dashed line) or thru a profdetary network. 

The host node may send data using IP over the air or it can emulated the Bluetooth™ 
air interface and appear as a cordless telephone base station for the client device. By 
this method no specialist software needs to run on the cli^ device if that device is a 
handheld phone or dmilar. Security can be preserves by not decrypting the air 
inter&ce on the host system and passing the un-decrypted infonnation onto the server. 

RAMIFICATIONS 

The use of this technology will enable a number of conunercial services that have 
hitherto hem prohibitively expensive or complex. 

Roaming users will be able to get automatic high bandwidth connections to the 
Internet i^erever there is another member present Since members can be conmiercial 
or cooperative in their action this will allow ubiquity of service. 

One can envisage a member parking their car outside their home. The CTA 
cormecting automatically to their home computer and synchronizing their MP3 anisic 
collection with their on board hard drive. 

One can envisage a member driving into a gas station, purchasing a movie for their 
children using the onboard computer and while gas is being pumped and paid for the 
movie is downloaded to the on-board entertairmient system. 
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We Claim: 

1. A method of comiection to a network comprising: 
imder control of a host system, 

the configuration of a tunnel 
under control of the cli^ system, 

the connection to the host system 
under control of a matdiing means» 

the contparison of the host system and client system preferences and, if a 
matdi is made, the automatic establishing of a secure link from the mobile system to 
the target network thru the fixed system. 

2. As claimed in 1 where the comparison is made in a server. 

3. As claimed in 1 where the fixed network is the Internet 

4. As clainied in I where the fixed network is the PSTN. 

5. As claimed in 1 where the fixed system is, itself nK>bile and connected to another 
fixed system in a manner that can be repeated recursively until a connection to the 
target network is made. 

6. As claimed in 1 where host systems and the client systems are members of a 
service that gives reciprocal roaming rights. 

7. As daimed in 1 where the host system publishes a cost of obtaining a link and the 
mobile client system has a preprogrammed limit to the amount it is willing to pay for 
a link and if the cost is less than or equal to the limit then the link is automatically 
established. 

8. As claimed in 1 where the host system is not connected to a network and will make 
connection to that network upon request by a client. 

9. A method for managing the handoff fix>m one networic to another: 

imder control of a server system the preferences of a mobile client system are stored 
the server system can negotiate a link with an ahemate network capability for use by 
the mobile system and can synchronize the handoff of the connection to the mobile 
system. 

10. A method by which a host PC mimics the air interface for a cordless telq>hone 
link (including a Bluetooth link) and converts the datastream into suitable packets for 
transmission over the Internet. 
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11. As Claimed m l whoe the Unk is not automaticaUy established. Imti^ 
is given notification of the availability of a link that diey can accept or rgect 

12. As claimed in 1 whm the client configuration is performed automatically by the 
host upon boot up. 

13. A system wbm packets can be automatically routed thru multiple connection 
means under control of the mobile device and the server system. 

13. As claimed in 1 where packets can be routed thru the cellular system to the 
Internet automatically upon loss of the fixed wireless connection. 

14. A means where a the host system is mounted in a place where radio fi-equency 
interference might prove a hazard such as an airplane or blasting area such that all 
member devices can be either, turned off selectively, such as during takeoff and 
landing or turned off because they do not meet regulations or their presence notified 
whether they are members or not or any combination of these options. 

15. As claimed in 1 where the data stream is racrypted, rither selectively or prior to 
being sent to the server and decrypted prior to being sent to the network such that the 
privacy and security of the client are maintained. 

16. As claimed in 15 where the encryption can be selectively applied to the data 
stream depending on preferences. 

17. The automatic synchronization of selected content such as e-mail, music or video 
by predefined preferences upon the obtaining of a connection with the correct 
characteristics such as bandwidth and cost. 

18. The coordination of the members of the network by means of time, fi'equency or 
code such as to make inconq)atible wireless networics coexist. 

19. The coordination of members by time such as they all power up or down 
substantially in concert in order to preserve power consumption. 

20. A system as described in 1 where the server is any available member located at 
sufiBcient physical and or logical distance firom the host that security and privacy are 
maintained. 
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